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Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH{S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time nnay be available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 1 33). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1 .704(b). 

Status 

1 )K1 Responsive to communication(s) filed on 22 March 2004 . 
2a)S This action is FINAL. 2b)n This action is non-final. 

3) 0 Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) K Claim(s) 1-33 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) 0 Claim(s) is/are allowed. 

6) ^ Claim(s) 1-33 is/are rejected. 

Claim(s) is/are objected to. 

8) 0 Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) 0 The specification is objected to by the Examiner. 

10)0 The drawing(s) filed on is/are: a)n accepted or b)^ objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 

Replacement drawing sheet(s) including the correction is required If the drawing(s) is objected to. See 37 CFR 1.121(d). 
1 1 )□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-1 52. 

Priority under 35 U.S.C. § 119 

12)0 Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)n All b)n Some * c)^ None of: 

1 .□ Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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1) K Notice of References Cited (PTO-892) 

2) n Notice of Draflsperson's Patent Drawing Review (PTO-948) 

3) D Infonnation Disclosure Statement(s) (PTO-1449 or PTO/SB/08) 

Paper No(s)/Mail Date . 



4) n Interview Summary (PTO-413) 

Paper No{s)/Mail Date. . 

5) □ Notice of Informal Patent Application (PTO-1 52) 

6) □ Other: . 



U.S. Patent and Tradennarlt Office 
PTOL-326 (Rev. 1-04) 



Office Action Summary 
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1. 



Claims 1-33 are pending. 



2. 



Claims 1 and 17 have been amended. The Final Action is appropriate. 



Claim Rejections - 35 USC § 102 



The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 

Claims 1-33 are rejected under 35 U.S.C. § 102(e) as being anticipated by Gelman, Jr. 
et al [Gelman 6,41 5,329 B1]. 

3. As per claim 1 , Gelman discloses a method of controlling at a gateway 
computing device access of a client machine to a desired resource hosted on a 
destination server, the desired resource being of at least one material type selected 
from the group including audible materials, readable materials and viewable materials, 

(a) at the gateway computing device receiving handshaking packets from the 
client machine having as a destination address with the destination server [Gelman. 
Gateway, server col 7 lines 10-38; destination address, col 10 lines 9-21; handshake 
packets, col 29 lines 34-47]; 

(b) redirecting network communications [Gelman, redirect rules, col 18 lines 34- / 
52; col 19 line 50-col 20 line 7;col 21 lines 27-38 ;col 23 line 57-cpl 24 line 37;col 29 
lines 1-15], including the steps of: 
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redirecting the handshaking packets by rewriting the destination address 
in the handshaking packets IP headers to route the packets to an access 
controlling web server that is remote from the client, the gateway, and the 
destination server [Gelman, redirect rules, col 18 lines 34-52; col 19 line 50-col 
20 line 7;col 21 lines 27-38;col 23 line 57-col 24 line 37;col 29 lines 1-15. It was 
obvious that the Redirect rule allows the destination address changed/translated 
to destination address, col 10 lines 9-21]; 

receiving a content request packet from the client machine at the gateway 
destined for the destination server intended to retrieve the desired resource from 
the destination server [Gelman, the intended destination node, col 8 lines 42-50]; 

at the gateway redirecting the content request packet by rewriting the 
destination address in the packet IP header to route the packet to the access 
control web server [Gelman, gateway changes the ports in header, col 9 lines 17- 
33]; 

(c) receiving a response at the gateway from the access controlling web server 
[Gelman. Gateway, server col 7 lines 10-38]; and 

(d) at the gateway, controlling access of the client machine to the desired 
resource based on the response from the access controlling web server [Gelman, 
determines whether to send an ARQ message based on sequence numbers of 
messages received, col 37 lines 4-9], including-refusing the. client machine.access tor : 
the desired resource if the response from the access confrbljing web server indicates, 
that the client should not have access to the desired resource and granting the client 
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machine access to the desired resource if the response from the access controlling web 
server indicates that the client should have access to the desired resource [Gelman. 
Firewall with authentication and packet filtering, col 32 lines 1-22]. 

4. Claims 1 7 and 33 contain the similar limitations set forth of method claim 1 . 
Therefore, claims 17,33 are rejected for the similar rationale set forth in claimi . 

5. As per claims 2,18 Gelman discloses establishing a connection between the 
client machine and the destination server if the response indicates that access to the 
desired resource is allowable. 

6. As per claims 3,19 Gelman discloses the content request packet comprises a 
GET URL packet [Gelman IP address, col 29 lines 15-25; HTTP transfer, col 31 lines 1- 
11]. 

7. As per claims 4,20 Gelman discloses the response indicates that access to the 
desired resource is allowable if the access controlling web server does not recognize 
the URL of the GET URL packet as an inherent feature of authorization server. 

8. As per claims 5,21 Gelman discloses the step of refusing a connection to the 
destination server, and establishing instead a connection between the client machine 
and the access coritrollihg web server if the response is that the access controlling web 
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server recognizes the URL of the GET LTRL packet as an inherent feature of 
authorization server. 

9. As per claims 6.13,22,29 Gelman discloses resending the handshaking packets 
[Gelman, handshake packets, col 29 lines 34-47] and GET URL packet to the 
destination server transparently with respect to the client machine [Gelman. 
transparently, col 7 lines 48-59]. 

10. As per claims 8,15.24,31 Gelman discloses the step of determining whether to 
redirect network communications based on the content of a handshaking packet as 
inherent feature of communication between gateway and authorization server. 

11. As per claims 9,1 6,25,32 Gelman discloses the step of determining whether to 
redirect network communications comprises deciding to redirect network 
communications if the handshaking packet is a SYN packet directed to port 80 on the 
destination server as inherent feature of communication between gateway and 
authorization server. 

12. As per claims 10,26 Gelman discloses the response indicates that access to the 
desired resource is allowable if the access controlling web server recognizes the URL of 
the GET URL packet as inherent feature of comrriunication between gateway and 
authorization server. 
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1 3. As per claims 1 1 ,27 Gelman discloses the step of refusing a connection to the 
destination server, and establishing instead a connection between the client machine 
and the access controlling web server if the response indicates that the access 
controlling web server does not recognize the URL of the GET URL packet as inherent 
feature of authorization server process. 



14. As per claims 12,28 Gelman discloses the access controlling web server is an 
RSACi Web Server as inherent feature of Web server. 



15. As per claims 7,14,23,30 Gelman discloses the invention as describe above 
except embedding an identity token readable by the access controlling web server in 
the GET URL packet, wherein the identity token uniquely identifies the client machine 
as inherent feature of authorization server process. 



THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to examiner Thong Vu, whose telephone number is (703)- 
305-4643. 

The examiner can normally be reached on Monday-Thursday from 8:00AM- 4:30PM. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Jack Harvey, can be reached at (703) 305-9705. 

Any inquiry of a general nature or relating to the status of this application should 
be directed to the Group receptionist whose telephone number is (703) 305-9700. 

Any response to this action should be mailed to: Commissioner of Patent and 
Trademarks, Washington, D.C. 20231 or faxed to : 

After Final (703) 746-7238 
Official: (703) 746-7239 
Non-Official (703) 746-7240 
Hand-delivered responses should be brought to Crystal Park 1 1,2121 Crystal 
Drive, Arlington. VA., Sixth Floor (Receptionist). 

Thong Vu 
Patent Examiner 
Art Unit 2142 




